Dashboard metrics
The overview dashboard of security overview displays security alert metrics for your organization or enterprise.
Trend indicators show percentage change compared to the previous period. For example:
- 10 alerts this week vs. 20 alerts last week = 50% decrease
- An average alert age of 15 days vs. 5 days = 200% increase
Alert severity filtering: The dashboard only includes alerts with security severity levels: Critical, High, Medium, or Low. Non-security alerts (Error, Warning, or Note) are excluded. This may cause the dashboard count to differ from code scanning alert totals. For more information, see Code scanningアラートについて.
Detection metrics
Track current state and trends of security alerts.
Open alerts over time
Graph showing the number of open alerts over time.
Included
- New alerts (shown on creation date)
- Existing open alerts (shown at start of period)
Excluded
- Remediated or dismissed alerts
Default grouping: Alert severity
Age of alerts
Average age of alerts still open at the end of the time period.
Formula: (Period end date - Alert creation date) averaged across all open alerts
Note: Reopened alerts use the original creation date, not the reopen date
Reopened alerts
Total open alerts that were reopened during the time period.
Counted if:
- Closed before the period and still open at period end
- Created, closed, and reopened during the period
- Open at period start, closed, then reopened during the period
Requirement: Must be open at the end of the reporting period.
Secrets bypassed or blocked
Ratio of secrets bypassed to total secrets blocked by push protection.
Metrics
- Bypassed: Detected secrets that were committed anyway
- Successfully blocked: Total blocked minus bypassed
View details: Click to see the secret scanning report with matching filters.
For more information, see シークレット スキャン プッシュ保護のメトリックを表示する.
Alert trends graph
Graph showing alert count changes over time. Toggle between open and closed alerts.
Open alerts
- New alerts (shown on creation date)
- Existing alerts (shown at start of period)
Closed alerts
- Alerts closed during period (shown on close date)
- Alerts closed before period (shown at start of period)
Default grouping: Alert severity
Impact analysis table
Shows repositories and advisories with the highest security risk.
Repositories tab
- Top 10 repositories by open alert count
- Total alerts and severity breakdown
Advisories tab
- Top 10 CVE advisories by alert count
- Dependabot alerts only
Remediation metrics
Track how quickly and effectively alerts are resolved.
Closed alerts over time
Graph showing the number of closed alerts over time.
Included
- Alerts closed during period (shown on close date)
- Alerts closed before period (shown at start of period)
Default grouping: Alert severity
Mean time to remediate
Average age of alerts remediated or dismissed during the time period.
Formula: (Alert close date - Alert creation date) averaged across all closed alerts
Excluded: Alerts closed as "false positive"
メモ
Reopened alerts use the original creation date, not the reopen date.
Net resolve rate
Rate at which alerts are being closed (measures resolution velocity).
Formula: Closed alerts (that stayed closed) ÷ New alerts created
Important: Uses all new and closed alerts in the period. These may be different alert populations.
Excluded: Alerts reopened and re-closed during the period.
Alert activity graph
Shows alert inflows and outflows over time.
Visual key
- Green bars: New alerts created
- Purple bars: Alerts closed
- Blue line: Net activity (new minus closed)